A new ColdFusion Hotfix has been released, which applies to ColdFusion 8 and higher on Windows, Macintosh and UNIX systems.
The update itself resolves a vulnerability in a ColdFusion method that could lead to cross-site scripting in ColdFusion applications utilizing this method.
Get more details about this important update here: http://www.adobe.com/support/security/bulletins/apsb10-11.html